PT-2024-29077 · Apple · Macos Monterey+3

Joshua Jones

Published

2024-07-29

Updated

2024-12-10

CVE-2024-40821

CVSS v3.1

8.4

High

Vector

AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions macOS versions prior to 14.6 macOS Monterey versions prior to 12.7.6 macOS Ventura versions prior to 13.6.8

Description An access issue was addressed with additional sandbox restrictions. The issue may cause third-party app extensions to not receive the correct sandbox restrictions.

Recommendations For macOS versions prior to 14.6, update to macOS Sonoma 14.6. For macOS Monterey versions prior to 12.7.6, update to macOS Monterey 12.7.6. For macOS Ventura versions prior to 13.6.8, update to macOS Ventura 13.6.8.

Fix

Improper Preservation of Permissions

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-281

Related Identifiers

CVE-2024-40821

Affected Products

Apple Macos

Macos Monterey

Macos Sonoma

Macos Ventura

PT-2024-29077 · Apple · Macos Monterey+3

CVE-2024-40821

Weakness Enumeration

Related Identifiers

Affected Products

References · 15